Improved ACK validation in Linux TCP to prevent spoofing attacks
CVE-2023-52881

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 29 May 2024

Badges

📰 News Worthy

Summary

The CVE-2023-52881 vulnerability affects the Linux kernel, specifically in its TCP implementation. The flaw could allow for a remote, unspecified attack to occur, posing a medium risk with a CVSS Base Score of 7.3. The vulnerability affects various versions of the Open Source Linux Kernel prior to 6.7 and 4.14.333. Users are advised to keep their systems up to date and should install any available security patches promptly to prevent exploitation. The potential exploit of this vulnerability can lead to serious consequences, emphasizing the need for timely updates and proactive security measures to protect against potential attacks.

Affected Version(s)

Linux 354e4aa391ed50a4d827ff6fc11e0667d0859b25 < 69eae75ca5255e876628ac5cee9eaab31f644b57

Linux 354e4aa391ed50a4d827ff6fc11e0667d0859b25 < 458f07ffeccd17f99942311e09ef574ddf4a414a

Linux 354e4aa391ed50a4d827ff6fc11e0667d0859b25 < 7ffff0cc929fdfc62a74b384c4903d6496c910f0

News Articles

News.de

CVE-2023-52881

IT-Sicherheit: Linux gefährdet - Neue Sicherheitslücke bei Linux Kernel

Für Linux Kernel gibt es eine aktuelle Sicherheitswarnung. Wodurch die IT-Sicherheit bei Systemen von Linux bedroht wird, wie hoch das Risiko ist und wie sich betroffene Nutzer verhalten sollten, lesen Sie hier.

7 months ago

References

https://git.kernel.org/stable/c/69eae75ca5255e876628ac5ce...

https://git.kernel.org/stable/c/458f07ffeccd17f99942311e0...

https://git.kernel.org/stable/c/7ffff0cc929fdfc62a74b384c...

Timeline

📰
First article discovered by News.de
May 30, 2024
Vulnerability published
May 29, 2024
Vulnerability Reserved
May 21, 2024

Collectors

NVD DatabaseMitre Database1 News Article(s)